Fixed
Created: Dec 20, 2017
Updated: Dec 31, 2020
Resolved Date: Dec 31, 2020
Found In Version: 8.0
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace
contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when both the nops module and the memberof overlay are enabled, attempts to free a buffer that was allocated on the stack, which allows remote attackers to cause a denial of service (slapd crash) via a member MODDN operation.
https://access.redhat.com/security/cve/cve-2017-17740